$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/5E24BEAADA7C11ED8156D867C4F9AE02.roa File: 5E24BEAADA7C11ED8156D867C4F9AE02.roa (raw, json) Hash identifier: pnsTfa/fBh+ut4z6WJwG9DuwzdbUbJpdmAmyIyR8oG8= Subject key identifier: 7A:1C:A3:D9:D1:31:4C:B2:52:D4:3D:C9:DD:1F:48:D8:3F:7F:42:6A Certificate issuer: /CN=A9145D4C/serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Certificate serial: F4 Authority key identifier: 40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/5E24BEAADA7C11ED8156D867C4F9AE02.roa Signing time: Thu 12 Oct 2023 03:51:41 +0000 ROA not before: Thu 12 Oct 2023 03:51:41 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 10080 IP address blocks: 103.143.156.0/23 maxlen: 23 103.143.156.0/24 maxlen: 24 103.143.157.0/24 maxlen: 24 203.31.252.0/24 maxlen: 24 2400:a2e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D4C/serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Validity Not Before: Oct 12 03:51:41 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65276d4d-ea5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fe:76:68:84:44:8c:26:d5:0b:1f:eb:67:f0: 3b:78:e8:a8:96:b3:42:ca:e1:22:31:fc:1c:9b:12: 86:3d:34:e9:33:0c:88:75:b3:68:31:ad:42:3f:f5: 69:0f:01:c5:b2:da:a4:b8:11:4d:2f:4d:a5:96:e9: ba:d8:e5:0e:74:f7:34:5d:b8:b7:f7:df:bc:50:f5: 0f:32:4d:be:af:00:78:db:15:ef:74:05:b0:62:06: c4:e1:18:e5:96:d6:ed:40:d8:28:43:3d:20:af:13: eb:da:34:89:02:1f:39:e8:1d:fe:ac:1c:40:4a:1f: 51:63:57:8c:84:77:0e:1d:0d:f3:4d:35:90:c2:2e: cf:ea:50:fb:59:28:d3:06:49:d9:4c:27:2c:c9:1f: 23:cf:aa:f8:5a:90:01:09:c5:8c:75:8b:9a:de:5d: 2c:d5:62:6a:96:7d:05:d2:eb:d9:be:4d:52:ea:0f: 7d:de:6f:42:83:e4:61:9a:dd:0c:c9:07:78:bd:a5: 14:0d:6b:c7:ff:21:84:b4:b0:b0:41:c2:92:63:ce: ee:e1:29:a9:c9:87:ef:e9:30:ec:6b:6a:16:06:e4: f9:b4:7f:70:26:88:87:bf:69:12:69:82:87:25:78: 06:d9:6b:8d:f9:98:34:18:16:b2:20:6d:59:02:6f: c2:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:1C:A3:D9:D1:31:4C:B2:52:D4:3D:C9:DD:1F:48:D8:3F:7F:42:6A X509v3 Authority Key Identifier: keyid:40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/5E24BEAADA7C11ED8156D867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.156.0/23 203.31.252.0/24 IPv6: 2400:a2e0::/32 Signature Algorithm: sha256WithRSAEncryption 9b:11:4b:f5:d0:e6:f2:1f:26:be:33:e2:a1:6e:de:80:d4:70: 4f:d1:11:ee:a4:cb:cc:0c:a1:de:b3:93:a3:5d:10:3b:46:d8: d1:a5:22:43:10:5b:18:d6:1d:31:ec:79:8e:d3:e9:3e:bb:aa: 0e:94:f9:bd:83:97:fd:bf:18:4e:9f:83:41:79:c2:69:a0:61: 01:db:09:b6:70:78:0c:31:a0:e1:e1:b7:57:1d:27:f7:50:50: 1c:4a:d5:31:85:2c:54:e4:e1:cd:87:dc:21:8c:3d:aa:ba:82: c9:83:79:57:35:af:59:c0:74:f0:71:91:25:ca:df:47:5d:6f: c1:a9:1c:1f:89:37:3f:cf:ef:80:8b:3e:b0:34:13:56:7a:0f: f0:b0:52:e7:d3:31:08:a9:ed:b6:1e:b7:46:13:37:05:11:f4: 24:02:09:b3:eb:f3:d8:f6:91:c4:8e:54:e1:32:0f:a0:5e:30: 4c:40:fd:fe:22:02:05:fa:a6:7c:64:b0:61:84:db:d5:6b:05: 45:1c:50:b7:0f:53:58:da:ab:37:50:45:31:ea:fe:93:53:55: a4:4e:b3:ce:ec:9a:1f:63:bb:29:49:80:19:0f:c1:b5:37:fd: 99:d1:0f:84:0a:1d:eb:47:5e:77:5a:85:63:94:68:0c:bf:1b: ea:34:35:f0 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVENEMxMTAvBgNVBAUTKDQwRDgzNzdDQUE1QTZFQUI5MTEzM0U5NjJFRkY3RTIx QjUxMTNEQjkwHhcNMjMxMDEyMDM1MTQxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI3NmQ0ZC1lYTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxP52aIREjCbVCx/rZ/A7eOiolrNCyuEiMfwcmxKGPTTpMwyIdbNoMa1CP/Vp DwHFstqkuBFNL02llum62OUOdPc0Xbi399+8UPUPMk2+rwB42xXvdAWwYgbE4Rjl ltbtQNgoQz0grxPr2jSJAh856B3+rBxASh9RY1eMhHcOHQ3zTTWQwi7P6lD7WSjT BknZTCcsyR8jz6r4WpABCcWMdYua3l0s1WJqln0F0uvZvk1S6g993m9Cg+Rhmt0M yQd4vaUUDWvH/yGEtLCwQcKSY87u4SmpyYfv6TDsa2oWBuT5tH9wJoiHv2kSaYKH JXgG2WuN+Zg0GBayIG1ZAm/CiQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFHoco9nR MUyyUtQ9yd0fSNg/f0JqMB8GA1UdIwQYMBaAFEDYN3yqWm6rkRM+li7/fiG1ET25 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQ0Qy9GNDIyRkQxMjMy NTgxMUVEQkQxNkQ2MjRDNEY5QUUwMi9RTmczZktwYWJxdVJFejZXTHY5LUliVVJQ YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOZzNmS3BhYnF1UkV6NldMdjktSWJVUlBiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVENEMvRjQyMkZEMTIzMjU4MTFFREJEMTZENjI0QzRGOUFFMDIvNUUyNEJFQUFE QTdDMTFFRDgxNTZEODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnj5wDBADLH/wwDQQCAAIwBwMFACQAouAwDQYJKoZIhvcN AQELBQADggEBAJsRS/XQ5vIfJr4z4qFu3oDUcE/REe6ky8wMod6zk6NdEDtG2NGl IkMQWxjWHTHseY7T6T67qg6U+b2Dl/2/GE6fg0F5wmmgYQHbCbZweAwxoOHht1cd J/dQUBxK1TGFLFTk4c2H3CGMPaq6gsmDeVc1r1nAdPBxkSXK30ddb8GpHB+JNz/P 74CLPrA0E1Z6D/CwUufTMQip7bYet0YTNwUR9CQCCbPr89j2kcSOVOEyD6BeMExA /f4iAgX6pnxksGGE29VrBUUcULcPU1jaqzdQRTHq/pNTVaROs87smh9juylJgBkP wbU3/ZnRD4QKHetHXndahWOUaAy/G+o0NfA= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:15 2024 by rpki-client on console-ams.rpki-client.org